First published: Thu Dec 29 2022(Updated: )
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
Credit: security@huntr.dev security@huntr.dev
Affected Software | Affected Version | How to fix |
---|---|---|
Usememos Memos | <0.9.1 | |
<0.9.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-4841 refers to a vulnerability in the GitHub repository usememos/memos prior to version 0.9.1 that allows for Cross-site Scripting (XSS) attacks.
CVE-2022-4841 has a severity value of 5.4, which is considered high.
CVE-2022-4841 affects Usememos Memos versions prior to 0.9.1 by enabling stored Cross-site Scripting (XSS) attacks.
To fix CVE-2022-4841, you should update Usememos Memos to version 0.9.1 or later.
The Common Weakness Enumeration (CWE) ID for CVE-2022-4841 is CWE-79, which represents Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').